Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.jenkins-ci.main/jenkins-core@2.330
Typemaven
Namespaceorg.jenkins-ci.main
Namejenkins-core
Version2.330
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.332.4
Latest_non_vulnerable_version2.555
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-vq51-xhq4-d7dj
vulnerability_id VCID-vq51-xhq4-d7dj
summary 
Cross-Site Request Forgery (CSRF)
A cross-site request forgery (CSRF) vulnerability in Jenkins allows attackers to trigger build of job without parameters when no security realm is set.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-20612.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-20612.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-20612
reference_id
reference_type
scores
0
value 0.002
scoring_system epss
scoring_elements 0.4196
published_at 2026-04-24T12:55:00Z
1
value 0.002
scoring_system epss
scoring_elements 0.4202
published_at 2026-04-21T12:55:00Z
2
value 0.002
scoring_system epss
scoring_elements 0.4209
published_at 2026-04-18T12:55:00Z
3
value 0.002
scoring_system epss
scoring_elements 0.42117
published_at 2026-04-16T12:55:00Z
4
value 0.002
scoring_system epss
scoring_elements 0.42066
published_at 2026-04-13T12:55:00Z
5
value 0.002
scoring_system epss
scoring_elements 0.42091
published_at 2026-04-12T12:55:00Z
6
value 0.002
scoring_system epss
scoring_elements 0.42078
published_at 2026-04-02T12:55:00Z
7
value 0.002
scoring_system epss
scoring_elements 0.42017
published_at 2026-04-01T12:55:00Z
8
value 0.002
scoring_system epss
scoring_elements 0.42128
published_at 2026-04-11T12:55:00Z
9
value 0.002
scoring_system epss
scoring_elements 0.42094
published_at 2026-04-08T12:55:00Z
10
value 0.002
scoring_system epss
scoring_elements 0.42042
published_at 2026-04-07T12:55:00Z
11
value 0.002
scoring_system epss
scoring_elements 0.42106
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-20612
2
reference_url https://github.com/jenkinsci/jenkins
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/jenkinsci/jenkins
3
reference_url https://github.com/jenkinsci/jenkins/commit/b5c3764681f3b4ce83d0e78f6a9327925640d57e
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/jenkinsci/jenkins/commit/b5c3764681f3b4ce83d0e78f6a9327925640d57e
4
reference_url https://www.jenkins.io/changelog-stable/#v2.319.2
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.jenkins.io/changelog-stable/#v2.319.2
5
reference_url https://www.jenkins.io/changelog/#v2.330
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.jenkins.io/changelog/#v2.330
6
reference_url https://www.jenkins.io/security/advisory/2022-01-12/#SECURITY-2558
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.jenkins.io/security/advisory/2022-01-12/#SECURITY-2558
7
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuapr2022.html
8
reference_url http://www.openwall.com/lists/oss-security/2022/01/12/6
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2022/01/12/6
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2044460
reference_id 2044460
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2044460
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-20612
reference_id CVE-2022-20612
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-20612
11
reference_url https://github.com/advisories/GHSA-p92q-7fhh-mq35
reference_id GHSA-p92q-7fhh-mq35
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p92q-7fhh-mq35
12
reference_url https://access.redhat.com/errata/RHSA-2022:0339
reference_id RHSA-2022:0339
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0339
13
reference_url https://access.redhat.com/errata/RHSA-2022:0483
reference_id RHSA-2022:0483
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0483
14
reference_url https://access.redhat.com/errata/RHSA-2022:0491
reference_id RHSA-2022:0491
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0491
15
reference_url https://access.redhat.com/errata/RHSA-2022:0555
reference_id RHSA-2022:0555
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0555
16
reference_url https://access.redhat.com/errata/RHSA-2022:0565
reference_id RHSA-2022:0565
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:0565
fixed_packages
0
url pkg:maven/org.jenkins-ci.main/jenkins-core@2.319.2
purl pkg:maven/org.jenkins-ci.main/jenkins-core@2.319.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.319.2
1
url pkg:maven/org.jenkins-ci.main/jenkins-core@2.330
purl pkg:maven/org.jenkins-ci.main/jenkins-core@2.330
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.330
aliases CVE-2022-20612, GHSA-p92q-7fhh-mq35
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vq51-xhq4-d7dj
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.330